Vulnerabilities > CVE-2012-5347 - Unspecified vulnerability in Tinywebgallery 1.8.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN tinywebgallery
exploit available
Summary
TinyWebGallery 1.8.3 allows remote attackers to execute arbitrary code via shell metacharacters in the command parameter to (1) inc/filefunctions.inc or (2) info.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | TinyWebGallery 1.8.3 - Remote Command Execution. CVE-2012-5347. Webapps exploit for php platform |
| file | exploits/php/webapps/18322.txt |
| id | EDB-ID:18322 |
| last seen | 2016-02-02 |
| modified | 2012-01-06 |
| platform | php |
| port | |
| published | 2012-01-06 |
| reporter | Expl0!Ts |
| source | https://www.exploit-db.com/download/18322/ |
| title | TinyWebGallery 1.8.3 - Remote Command Execution |
| type | webapps |
References
- http://www.exploit-db.com/exploits/18322
- http://www.exploit-db.com/exploits/18322
- http://www.osvdb.org/82481
- http://www.osvdb.org/82481
- http://www.securityfocus.com/bid/51325
- http://www.securityfocus.com/bid/51325
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72157
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72157